Yet another MOVEit Transfer vulnerability, CVE-2023-35708, was discovered this week by Progress Software, the third that the company has disclosed, alongside CVE-2023-34362 and CVE-2023-35036.

A SQL injection vulnerability has been found in the MOVEit Transfer web application, allowing an unauthenticated attacker to gain unauthorized access to MOVEit Transfer’s database. Progress ...

Read more about the MOVEit incident May 31: Rapid7 observed exploitation of a SQL injection vulnerability in Progress Software’s managed file transfer product, which was disclosed this week ...

Progress disclosed the vulnerability alongside a flaw in MOVEit Gateway, an add-on product for the file transfer service.

MOVEit cyber attack timeline 31 May: Rapid7 observed exploitation of a SQL injection vulnerability in Progress Software’s managed file transfer product. 5 June: Microsoft said the recently ...

Progress disclosed a critical new vulnerability in MOVEit Transfer Tuesday and “very shortly after” began seeing attempted exploits by hackers, according to researchers at Shadowserver.

MOVEit Transfer, the software at the center of the recent massive spree of Clop ransomware breaches, has received an update that fixes a critical-severity SQL injection bug and two other less ...

MOVEit app mass-exploited last month patches new critical vulnerability Just in time for the weekend: another unauthenticated SQL injection flaw!